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FIELD OF THE INVENTION 

The present invention elates to the field of data, device 
and communication protection and access control 
particular to a method of and apparatus for generation of 

a key. 

BJlCB GROUHD Or THE IJJSEBTIOH 

It is often necessary to protect data in digital form that 
i. stored in data storage devices and/or transmitted over 
a network. To prevent un-autnorired access of the data, 
encryption techniques are widely used. Essential problems 
of existing encryption techniques are d, where to keep the 

encryption key, so that it remains safe and. U, how to 
authenticate a user in the most effective way. Currently, 

authentication. A password, however, can be eas.ly 
attacked, and access cards can be easily lost. A user may 
l0S e valuable data forever if the password or card x. 

forgotten or lost. 

in order to address this problem, techniques have been 
proposed based on the use of biometrics of a user, that xs 
to say, physical characteristics of the user that 
th e user unambiguously. In several prior art proposals 
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such biometrics data is used to gain access to a computer 
system. The biometrics data is stored on a token for future 
reference. When the user subsequently wishes to obtain 
access to the system, the identity of the user is verified 
by comparing, the biometrics data of the user with that 
stored on the token. These proposals have the disadvantage 
that a token is required, which may be lost or compromised. 
In U.S. 5613012, a tokenless identification system is 
disclosed based on a correlative comparison of a unique 
•biometrics sample, such as a fingerprint or voice 
recording, gathered directly from the person of an unknown 
user, with an authenticated biometrics sample of the same 
type obtained and stored previously. 



These proposals have the disadvantage that an assumption is 
made that the storage devices are secure and that a secure 
communication link with the device is established. It is 
not true in many cases. In a networked environment, client 
devices can be public. Although the authorization data may 
be kept in a very secure place in the authenticating 
computer system, analogous to a safe deposit box in a bank, 
such data may still be accessible by the system operators 
and thus the data is not completely secure. 

It is an object of the invention to provide a method of 
protecting digital. data which alleviates this disadvantage 
of the prior art. 



001- 15:25 65 2273898 LLOYD WISE #4970 P.007/C 

PCT/SG98/0O067 
WO 00/1 4716 

3 

SUMMARY OF THE INVENTION 

According to the invention, there is provided a method of 
generating. a key or set of keys from a person's biometrics 
data comprising the steps of: 

(1) capturing the person's biometric data; 

(2) normalizing the captured biometrics data, 

(3) extracting invariant feature measures from the 
normalized data and representing the feature measures as a 
bit pattern; 

(*) storing the bit pattern in associative memory in an 
enrolment / registration phase and recalling the stored bit 
pattern fro* the associative memory in an identification / 

verification phase; and 

,5, generating the key from the recalled bit pattern. 

According to the invention in a second aspect, there is 
provided a method of generating a representation of 
biometrics data comprising the steps of: 

(1) capturing the biometric data; 

(2) normalizing the captured biometrics data, 

,3) extracting invariant features from the normalized data 
and representing the features as a bit pattern. 

According to the invention in a third aspect, there is 
provided a method of controlling access by generation of an 
access, key from a person' s biometrics data comprising the 

steps of: 
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(1) capturing the person's biometrics data; 

(2) normalizing the captured biometrics data, 

(3) extracting invariant features from the normalized data 
and representing the features as an initial bit pattern; 

(4) storing the initial bit pattern in associative memory 
for retrieval; 

*„~.r n\-CO at a subsequent time to 
{5) repeating steps ID 1.5 ) at * » * 

generate a subsequent bit pattern; 

<6) inputting. the subsequent bit pattern to the associative 
memory to recall the stored bit pattern; and 
(70 generating the key from the recalled bit pattern. 

According to the invention in a fourth aspect, there is 
provided a method of generating a key from the person's 
biometrics data which comprises the steps of: 

(1) , capturing the person's biometric data; 

(2 ) normalizing the captured biometrics data, 

(3) extracting invariant features from the normalized data 
and representing the features as a bit pattern; 

^ Hi +■ nattern in associative memory for 

(4) storing the bit pattern in 

retrieval; and 

(5 ) generating the key fro* the retrieved bit pattern. 

The invention, further comprises apparatus for performing 
any of the above methods. 

According to the invention in a fifth aspect, there is 
provided a codeboo* to store data fro, which, upon 
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the codebook comprising 
- retrieval, a key is generated, the co 

distributed associative memory. 

a .ribed is a tamoer-resistant method and 
The embodiment described is a . 

syst em to generate ■. uniaue tey ««- — « ^ 

person, using ^ —= iatiTe " . J 

person, . •= e to 

Gapt ured biometrics data of a person may vary 

i reasons such as variation of the ^t.cs it 

u ime iui . . The method 

• ^rm of capturing conditions. 
and var.at.on of P ^ 

compensates for this by .1 
« from the biometr.cs. These 

^ in rhe format of a bit pattern which is 

" , t the authentication phase, the 

associative memory. M 

rt.ta is captured again from the user 
biometr.cs data is P ^ fait 

Seature measures are again g _ previou sly 

• -h.„ used to recall the bit pattern pr 
• pattern is .hen used 

. ■ rte associative memory, which is uniq 

. pattern. Since assoc 

, -t-ori it is practically impossible to Una 
distributed, it P ^ b . ometrics 

patterns stored in the memory. Only ^ 

a valid stored pattern 
feature pattern can recall a 

feature ot-her purposes, 

= 1 . ri kev for encryption and other p v 
generate a valid key ror : 

' -™ identity verification, as a 
. such as for security, identity 

number or as a password. 

, ,nv kind for example a public/private 
The key may be of any kind, 
k€ y pair, identity key or symmetry key. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

An embodiment of the invention will now be described, by 
W£y of example, with reference to the accompanying 
drawings, in which: 

Figure 1 is . flow chart of the algorithm of an embodiment 
of the present invention. 

Figure 2 illustrates the functions of . parallel distributed 
1 associative memory in the embodiment of. Figure 1. 

feature points of a finger print. 
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W Figure 3 illustrates 

tlj ■ 



Figure 4 illustrates a variation of the embodiment of the 
present invention in which multiple biometrics are combined 
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•U for key generation 
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Figure 5 illustrates another variation of the embodiment of 
U» present invention using multiple associative memory 

codebooks - 

DEIAXI£D DESCRIPTION OF THE DESCRIBED EbBODIMENT 

ta embodiment of the method and apparatus to generate a 
.niaue private *ey for encryption / decryption, or a Key 
for a digital lock, for secure communication, access 
control, ownership claiming and other applications will now 
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be described. In the following description, the overall 
flow chart of the system is first explained, followed by a 
detailed description of each step of the system. In this 
description, use of fingerprint and face (appearance, 
biometrics data will be used as examples, although it will 
be understood that the method is equally applicable for use 
with other biometrics data such as, but not limited to, 
hand geometry, hand vein, iris, retinal pattern, signature, 
voice print and facial thermograms. There will be 
differences in the initial step to convert the biometrics 
1 data into feature measures in the format of a bit pattern, 

^ but once the biometrics data has been averted into such 

feature measures, all other processing steps wUl be 
exactly the same for all types of biometrics . 



S As shown in Figure 1, the method has the following basic 

steps: 



Bionics cU« ac^isition <1> = In this step, acquisition 
devices such as a finger print scanner / sensor are used to 
capture image data or other forms of biometrics data. 

Mox^a^on of biom^ics (2): In this step, the 

data of Step 1 is processed in order to reduce the effect 
of variations due to capturing condition changes . Such 
processing includes scale change, translation, rotation, 
and lighting and background changes. 



Hi 
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Feature encoding (3): In this step, feature measures which 
represent the invariant features of the biometrics are 
extracted. and a bit pattern is. generated from the feature 
measures . 

F^a^re^iTgistration and Matching (4) : In this step the 
feature measure bit pattern is processed by a codebook 4a 
implemented as distributed' associative memory. In an 
enrolment and registration step 4b, the bit pattern stored 
into the associative memory by learning. In a subsequent 
1 matching/recognition step 4c, a subsequently generated bit 

pattern is used to recall the bit pattern previously stored 
in the codebook to provide an activated pattern at step 4d. 



f ' ^Generation (5): In this step, a key is generated from 
I "the activated pattern. In case of enrolment/registration, 

1 ■ the generated key is registered with the relevant authority 
caused to lock or encrypt the. items to be protected. In 
case of matching/recognition, the 

generated key is . used to unlock or decrypt the items 
protected, or to authorize the person. 

. The techniques used in the each step will now be described: 



1. Biometrics data acquisition 

The technique employed for acquiring the biometrics data 
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depends on the biometrics used. In this description, 
fingerprint and face biometrics data are used as examples 
of the method. For fingerprints, either 0 f the two primary 
techniques, i.e. inked or live scan may be used. With the 
inked method, an inked fingerprint image is taken and this 
is scanned into a computer. . In the live scan technique, 
the fingerprint image is obtained by the scanner directly. 
For face, a digital picture of the face is obtained either 
through scanning of a photograph or directly with a digital 
camera. For both kinds of biometrics, biometrics data in 
? the form of a digital image is obtained. 



m 

hi 



For additional authentication, it is desirable to capture 
live biometrics data, that is, the capture device must be 
able to verify that the biometrics data captured is from a 

0 live person. This can be done by by employing various 
t techniques for various biometrics. For face recognition, 

1 where the video camera continuously captures a face image 
* with a speed, for example of 30 frames per second, a 

■ processing function to check for motion of the face and 
facial expressions may be employed. If both face motion 
and facial expressions are regular, the face images 
captured are "live". They will be rejected as false 
otherwise. There are, similarly, scanners available which 
make use of the properties of a "live" fingerprint. In the 
case of speaker identification, the aquisiticn system can 
prompt the. speaker to repeat a voice segment (eg a phrase 
or name) several times and check for variations, the 
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absence of which between any two segments will cause the 
biometrics data to be rejected. 



2. 



Normalization of biometries data 



Normalisation in general, is a common concept, in image 
processing and is discussed, for example in A. Rosenfield, 
A. C. Kak, Digital image processing/ Academic Press, . New 
York, Second edition, 1982. 

In the described embodiment, the biometrics data is 
normalised with reference to landmarks, which are central 
to the data and exist for all circumstances. The 
normalization is then done using these landmarks. By 
normalization is meant scaling the data range to a standard 
range and transforming the biometrics image to. a standard 
location, orientation, and scale. The typical normalization 
methods for fingerprint and face biometrics data are well 
known in the art and. examples are as follows: 

Finger print: Filtering to enhance minutiae points, 
identification of the core (a small but consistent part of 
' the finger), and use of the core location and orientation to 
' define a geometric transform, for normalization. 

Face: Identify the face region and eyes, use the location 
of. two eyes to define a geometric transform. Focus on face 
region and perform histogram normalization to reduce the 
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effect of background and lighting condition changes and 
transform the face image using the defined geometric 
transform. 

3. invariant featxire extraction 

in this step, a bit pattern is generated to represent the 
invariant features of the biometrics of a. person. The bit 
pattern is not a binary version of the actual biometrics 
image but is formed by using salient feature points and 
possible lines linking those _ feature points- Figure 3 shows 
an example of feature points used to generate a bit pattern 
of a finger; print. Here, salient feature points are. 
highlighted with black points linked by the lines shown. 
Since invariant salient feature points are extracted from 
the normalized image, for the same person," the locations of 
those feature points would be : almost the same. For 
fingerprint biometrics ' data, minutiae points of 
fingerprints are used as feature points . In the case of 
■face, biometrics, feature points such as the corners 
detected by Harris and Stephens (Harris, C. and Stephens, 
M. (1988) A combined corner and edge detector,. Proc. 4" 
Alvey Vision Conference, pp 147-151) are invariant and can 
be used to form the bit pattern. 

Feature points are of varying importance and a 
representation scheme for the bit pattern generation may be 
used. For example, in a. fingerprint image, minutiae points 



SI 
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are considered more important than ridge points, so more 
(data) bits can be assigned to. represent the minutiae 
points in the bit pattern- 

i 

The data forming the bit patterns may represent feature 
points from a smaller area than the original biometrics 
image with the central part emphasized, since parts far ^ 
from central part may be missing in some case's v 



Associative memory codebook and its operations 



Associative memory codebooks can be implemented using 
| various neural networks provided the stored patterns . are 

* randomly distributed. Hopf ield-like networks are one of 

k the possible implementations and will be used to explain 

i* this part, of the described embodiment of the invention. 



Supposing that the bit pattern extracted from the original 
biometrics image has size of M by N, then, there should be 
MN nodes in the Hopfield network. The network is fully 
connected. A node receives input from all other nodes. 
There is no distinction between input nodes, hidden nodes 
and output nodes. The total energy function of the network 
system is defined as summation of productions of value of 
all possible pairs of nodes and the link weight between 
them. The energy minima are referred to as stable states. 
The network stores information via its stable points in the 
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state space. The state evolution of the network system 
performs a gradient descent toward ' energy minima, and 
always ends up in a state of equilibrium. When the syste 
reaches equilibrium, no state changes will happen to any 
node of the neural network system. 

The bit patterns are stored by learning. One or several bit 
patterns representing the biometrics of a person are 
presented to the network as input and the network will 
evolve to create a stable state corresponding to the. input 

Q • 

y*f patterns. 

M 

■The information retrieval is performed by state evolution. 
When a subsequent input bit. pattern is presented, all nodes 
obtain their initial. state from the input bit pattern.. The 
information is retrieved when the state evolution reaches 
a local stable point. The retrieved ^activated) pattern is 
represented by. states of MN nodes as a binary word of MN 
bits. 

Figure 2 illustrates the functions provided by the 
associative memory which plays the roles of both 
. etching/recognition (10) and biometrics database (12) of 
prior art methods. It : i« also coupled with the decision 
making (14) and key generation (16) /rejection (18) process 
in the sense that tolerance of distortion of the recalled 
bit pattern is reflected in the key generation, and that 
the key is directly generated from the recalled bit pattern 
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while in the prior art, the key is assigned using separated 
methods. By doing so, the method of the described 
embodiment successfully hides the biometrics database and 
the key generation methods, making them difficult to 
attack. 

The key to be generated, which can be used as a 
public/private key pair and/or an identity key, requires 
more than 128 bits for security reasons - In the present 
method, the coordinates of salient points (around 48) are 

S " used to generate the private key, which can be as long as 

p| 48 x 2 bytes = 768 bits. 

w 



Using a Hopf ield-like neural network as associative memory, 
for any given input pattern, the network evolution will 
converge to a stable state. The : tamper resistance of the 
present, method can best be explained in answer to the 
following question: if an attacker randomly input a 
biometrics pattern, what is the probability that the 
network converges to a stored valid biometrics pattern? 
This can be looked at in three. ways: 

1. Using the method of steepest descent or Saddle-point 
approximation (for example, as disclosed in the book 
•Neural Networks" by B. Mullex J. Reinhardt, Springer- 
Verlag) it can be shown that jin addition to the minima 
which correspond to the stored patterns, there are *3' 
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spuria stable .t.t.. for P < «. "here P is the number 
of stored pattern. For a valid input. pattern, there is 
no problem to converge to the corresponding minima srnce 
the starting point is very near the minima. But for a 
random input pattern, the probability of converging to a 
' minima representing a valid biometrics patterns is very 
low. 2pr». Assume that there are 128 stored patterns, 
this probability will be much less than 

probabilitv for a 123 bit key. I» the case of very few 
users, one can choose to store more .more than !28) 
patterns and only validate the few users. 

2 «hen searching for a stored pattern with an input 
pattern by searching for minima of the energy function, 
th« energy function actually represents the correlation, 
between the input pattern and the stored pattern. As.t 

is known that the correlation function usually does not 
ha ve a sharp peak and noise exists, in practice, the 
recalled pattern is a mixture of the input pattern and 
the stored pattern (see book "Heural Networks and 
Simulation Methods" by Wan Ken 9 «0. Marcel Dekker Inc.) . 
The generated key will not ,b. a valid one if the input 
pattern is ouite different from the recalled one. That ,s 
■ to say, the input pattern must resemble the stored val.d 
. pattern in order to generate a valid key. By the nature 

■ « there should • not be any two identical 
of biometrics, there snouj. 

• natterns That means that attacker must 
biometrics patterns. 
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randomly generate biometrics patterns which resemble the 
valid ones (at least, with certain degree of similarity) . - 
Assume that each pattern is characterized by 4 8 salient 
feature points and that the image size is 512 * 512, 18 
bits are needed to code the coordinates of those points. 
To allow for « pixels variation of feature points, the ,18 
bits are reduced to 1.2 bits for coordinate coding.. There 
are all together 48 * 12 - 576 bits to code a pattern. 
Since there are p valid stored patterns, the probability 

■ ! 

i 

of resembling a valid pattern will be p2" 



3. The storage capacity of Ho^field network can be as 
high as 2N. even for non-orthogpnal patterns using the 
•J! learning method by Krauth . . anjd Mezard (See "Neural 

Networks" by B- Muller, J. Reinhardt; -Springer-Verlag) . 
To improve further the tamper-resistance of the system, 
a portion of the stored biometrics patterns can be 
validated. For a typical network size of 400 * 500, 
N-200,000. Within 400,000 stored patterns, only 400 
' patterns are validated. This further improves the tamper- 
resistance by reducing the attack probability by 1/1000. 

i 

5 . Key Generation i 

In either the enrolment/registijation (storage of bit 
pattern to associative memory)' p^ase or the matching / 
recognition (pattern retrieval firom associative memory) 
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phase, there is a stable state reached by network 
evolution. The states of nodes at the stable state 
represent the valid bit pattern, of biometrics of a person. 
A unique key can be generated from the pattern. 

Since there may be noise in jthe storage and retrieval 
process of the associative memory, it is preferred not to 
use directly the whole bit pattern represented, by the . 
network stable state to generate keys. Rather, only the 
most reliable and important feature points in the bit 
pattern are used. To decide on ih.se points, a person to be 
enrolled in the enrolment /registration phase will repeat 
the step (1) of having his/her jbiome tries data captured as 
samples. The reliable feature jpoints are defined as those 
points persistent for all. samp ]je biometrics data collected 
in the enrolment/registration phase. 

. When the important feature points are identified from the 
£' bit pattern, a hash algorithm (see book: Bruce Schneider, 

. Applied Cryptography: protocol*; algorithms and source code 
in c; John Wiley & Sons 1996^ can be used to generate a 
unique key, that may be . further used to generate the 
private key and public key for la specif ic application, such 

keys then being used to encrypj.and decrypt data as this is 
input and output- j 

For some application the key needs to be changed within 
a certain period. This can jbe achieved by adding and 
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changing at least one parameter in the key generation 
program. 

To achieve higher security, multiple biometrics can be 
combined for authentication. For j example , using multiple 
finger prints, a combination of finger print with voice, 
etc. This is illustrated in FigL 4 in which one set of 
processing modules 3-4d ..-.4<jl' ...4d" (capturing, 
normalisation, feature extraction and encoding, and 
registration/recall of associative memory codebook) for 
each biometrics is necessary to ojbtain recalled/activated 
pattern. All recalled/activated patterns (1, 2, ...,n) are 
then input to key generation module, and combined to 
generate one key. 



In case of multiple data items . of the same type of 
biometrics, for example, multiply finger prints, finger 

W print data (1, 2, ...,n) are processed using one set of 

Q " - 

j*fc processing modules to : obtain iactivated patterns for 

respective finger prints. When all recalled patterns 
arrive at the key generation module, a key is generated 
using all of recalled patterns., j. 

i 

• ' ! 
If it is assumed that two finger! prints are combined for 

authentication, since the false acceptance rate (FAR) for 

i 

a finger print is 10^ , combining two will result in FAR 'of 

! 

ict" . ! 
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in case of large users, one associative memory may not be 
able to store all biometries patterns. In such a case, 
multiple parallel associative memories 4a, 4a', «*" and 
4...-WB be used as illustrated in Fig. 5. Since such 
memories will run in parallel, tne speed of authentication 
will not be reduced. 



The method of the present , invention 
a digital processor for examp. 
suitably programmed. 



can be implemented with 
e an ordinary computer, 



